(12) 



UK Patent Application .,«GB ,,,,2 327567 ,,3, A 



(43) Data of A Publication 27.01.1999 



(21) Application No 9715097.3 

(22) OateofRltng 17.07.1997 



(71) Applicant(s) 

Onngm Parsonal Communications Services Limited 
(Incorporatad in tha Unitad Kfaiadom) 
St Jamas Coint, Graat Parte Road, AlmondMiury, 
BmSTOU BS12 Unltad Kfaigdom 

(72) (nventor(s) 

PatarFord 

(74) Agent and/or Address for Service 
RGCJankins&Co 

26 Caxton Straat LONDON. SW1 H ORJ, 
Unitad Kingdom 



(51) INTCL* 

H04a7/22 

(52) UK CL (Edition Q) 

H4LL1H10 

(56) Documents Cited 
GB2304499A 



W096/29835A1 US5325432A 



(58) Raid of Search 

UK CL (Edition N ) H4L LDQ IJ>SX L£CTS 
IIMTCL* WMQ 7/22 7/32 7/38 
ONUNE:WPI 



(54) Abstract Title 
Controlling 



to SMSC8 Service 



(57) A method is described which allows mobile stations 
(8) of users having certain access rights to display 
messages broadcast on a common channel of a cell in a 
cellular telecommunications network in intelligible form. 
The messages, before broadcast are encrypted using a 
predefined encryption key, and the mobile stations (8) 
having a corresponding access right are provisioned with 
the corresponding decryption key. Mobile stations lacking 
the appropriate access right are able to display a 
message, when received and picked up, only in 
encrypted, i.e. unintelligible, form. Some types of 
message broadcast within the call on the same common 
channel are deemed general access messages, which are 
broadcast in unencrypted form and may be displayed in 
intelligible form by any mobile station (8) camped on to 
the ceil in which the message is broadcast. 
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At least one drawing originally filed was infomial and the print reproduced here is taken from a later filed formal copy. 
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1 

CELLULAR CO^fMT]mrA^7 r>py 



This invention relates to a method of an ^>paiatus for distributing and 
receiving information in a ceUular telecommunications network, for example 
a GSM (Global System for Mobile communications) digital cellular ladio 
nttwork. 

The GSM standard is defined in a set of technical specifications issued 
by the European Telecommunicatiwis Standards Institute (ETSI), and diere are 
cunentiy a number of mobile telecommunications networks operating in 
accordance with the GSM standard, and variants thereof, such as the DCS1800 
standard. 

One service provided is a service referred to as a cell broadcast (CB), 
or short message - cell broadcast (SMS CB), service. In this service, 
information in die form of pages of text is transmitted on a common channel 
(die ceU broadcast channel, CBCH) of cells in the network. The transmission 
of pages is repeated at regular intervals, and users can store the information 
for retrieval and display by means of selective keystrokes on a mobile station, 
or may turn off the ceU broadcast function so as not to store die information. 
The information is intended to include locaUty-specific information, such as 
lists of local fedlities (hospitals, pharmacies, taxis, etc), local weather rqxjrts, 
local date/time indications, etc. 



At present, however, the cell broadcast functionality, although provided 
for in current GSM-type networks and the mobile stations used in them, has 
not been widely implemented in practice, in probability at least partly due to 
the costs associated with assembling and disseminating information via the 
s^vice. 

In accordance with an aspect of the present invention diere is provided 
a method of distributing information to users in a cellular teleconununications 
network, said method comprising: 

providing a plurality of mobile stations, each of said mobile stations 
having an associated information access status; 

broadcasting a signal, containing a linruted access message, for general 
reception in a ceU of said cellular telecommunications system; 

^tabling first mobile stations having a first information access status to 
present said message to a user when being served by said cell; and 

preventing second mobile stations having a second information access 
status from presenting said message to a user when being served in said cell. 

An advantage of this aspect of the invention is that access to the signal 
broadcast in the cell may be provided on a subscription basis. Some 
subscribers in the network may wish to have access to the information 
broadcast generally in the cell in addition to other services provided in the 
telecommunications network, such as voice call services, and will take out a 



subscription allowing access to the cellular information broadcasting service. 
Other users may not wish to receive the benefit of fte information broadcast 
in the cell, and will take out a subscription, perhaps at lower cost, preventing 
them firom accessing the information. 

The prevention of presentation of messages to users may be 
implemented by encrypting a message before transmission, such that a user not 
autiiorised to access the information can only view the message in encrypted 
form and unintelligibly, whereas a user having access rights to the information 
is able to view die message in decrypted and intelligible form. 

Preferably, the signal comprises a plurality of limited access messages 
each having a corresponding access right, the mediod comprising providing 
mobile stations with access rights, and enabling only mobile stations having 
an access right corresponding to a limited access message to present the 
limited access message to a user when being served in the cell. This allows 
die selection on a per user basis of the type of information a user is able to 
access, thus allowing a subscription to be individually tailored to a subscribers' 
needs. 

The signal may also contain a general access message, the method 
comprising enabling both the first and second mobile stations to present the 
general access message to a user when bdng served in the cell. This allows 
both limited access messages and general access messages to be disseminated 



by broadcasts in cells of a cellular telecommunications system, allowing some 
information to be presented to any user irrespective of the subscription type 
held. 

Preferably, alternative limited access messages are broadcast in cells 
located in different areas of the cellular telecommunications network, ther^y 
tailoring the information within the messages to different localities and 
increasing the utility of the service. 

In accordance with a further aspect of the invention there is provided 
apparatus for recdving information in a cellular telecommunications system, 
said apparatus comprising: 

means for storing a decryption key; 

means for receiving a message on a common channel in a cell of said 
cellular telecommunications system; and 

means for decrypting said message using said stored decryption key; 
and means for presenting said decrypted message to a user. 

This aspect provides ^paratus wherd>y a user may receive limited 
access messages on a common channel of a cell in the telecommunications 
system, and view the information in decrypted form, providing the mobile 
station of the user is provided with the decryption key. A decryption key may 
be distributed only to users having a predetermined subscription type. 

An embodiment of the present invention will now be described, by way 



of example only, with reference to the accompanying drawings, wherein: 

Figure 1 is a block diagram schematically illustrating a cdlular 
telecommunications system; 

Figure 2 is a block diagram schematically illustrating a cellular 
telecommunications mobile station; 

Figure 3 illustrates a list stored in a cell broadcast centre in accordance 
with the presrat invention; 

Figure 4 is a flow diagram illustrating functions carried out by the cell 
broadcast centre in accordance with the present invention; 

Figures 5 and 6 illustrate data blocks broadcast in a cell in accordance 
with tile present invention; 

Figure 7 is a flow diagram illustrating functions carried out by a 
network management centre in accordance with the present invention; 

Figure 8 illustrates a short message transmitted to a mobile station in 
accordance with the present invention; 

Figure 9 illustrates functions carried out by a mobile station when 
displaying a cell broadcast message in accordance with the present invention; 

Figure 10 shows an example of a display of a decrypted message in 
accordance with the present invention; 

Figure 11 illustrates an example of a display of an enoypted message 
in accordance with the present invoition; and 



Figures 12 and 13 are flow diagrams illustrating encryption key 
updating procedures carried out in accordance with the present invention. 

A GSM network, referred to as a public land mobile network (PLMN), 
is sdiematically illustrated in Figure 1. This is in itself known and will not 
be described in detail. A mobile switching centre (MSQ 2 is connected via 
communication links to a number of base station controller (BSCs) 4. The 
BSCS 4 are dispersed geographically across areas served by the mobile 
switching centre 2. Each BSC 4 controls one or more base transceiver stations 
(BTSs) 6 located remote from, and connected by further communication links 
to, the BSC. Each BTS 6 transmits radio signals to, and recdves radio signals 
from, mobile stations 8 which are in an area served by that BTS. That area 
is referred to as a "cell-. A GSM networic is provided with a large number 
of such cells, which are ideally contiguous to provide continuous coverage 
over the whole network territory. 

The mobile switching centre 2 is also connected via communications 
links to other mobile switdiing centres in the remainder of the mobile 
communications network 10, and to other networks such as a public service 
telq)hone network (PSTN), which is not illustrated. The mobile switching 
centre 2 is provided with a home location register (HLR) 12 which is a 
database storing subscriber authentication data including the international 
mobile subscriber identities (IMSIs) which are unique to each mobile station 



8. An IMSI consists of a mobile country code (3 decimal digits), a mobile 
network code (2 decimal digits) and a mobile subscriber code (up to 10 

dedmal digits) identi^g a subscriber within a particular network. The IMSI 
is also stored in the mobile station in a subscriber identity module (SIM) (to 
be described below) along with other subscriber-^fic information. 

The mobUe switching centre is also provided widi a visitor location 
register (VLR), not shown, 14 which is a database temporarily storing 
subscriber audientication data for mobile stations active in its area. 

In addition, the MSG is connected to a cell broadcast centre (CBQ 12 
for originating ceU broadcast (CB) messages in the network, a short message 
centre (SMQ 13 for handling the transfer of short messages within the 
network, a network management centre (NMC) 14 for performing management 
functions in the network, and a customer services system (CSS) 15 for 
performing customer service functions, including the updating of customer 
subscription data for example by manual input at workstations in die system. 

Referring to Figure 2, a mobUe station 8 comprises a transmit/receive 
aerial 16. a radio finequency transceiver 18, a speech coder/decoder 20 
connected to a loudspeaker 22 and a microphone 24. a processor circuit 26 and 
its associated memory 28. an LCD display 30 and a manual input port 
(keypad) 32. The mobile sution is connected to a removable SIM 34 via 
electrical contacts 35. 



8 

The SIM 34 connected to the mobile station has a SIM processor 36, 
for example a Hitachi H8 microprocessor, and SIM memory 38, which 
includes for example 16 kilobytes of mask-programmed ROM 38a containing 
the SIM operating system, 8 kilobytes of read/write EEPROM 38b for the 
non-volative storage of data items and 256 bytes of RAM for use by the SIM 
processor 36 during operations. 

As described above, the SIM 34 is used for the storage and retrieval 
of data items by the processor 26 of die mobile station 8. The command set, 
data file structure and data coding format for data communicated via the 
int^ace between die mobile station processor 26 and the SIM processor 36 
are all specified, in GSM technical specification 11.11. 

Referring back to the network elements illustrated in Figure 1 , the CBC 
12 holds a set of cell broadcast messages to be broadcast within the network, . 
and transmits them to the BSCs 4 in accordance with location areas which are 
predefined for each message type. Each cell broadcast message is provided 
with a unique message identifier (a 16 bit integer), which identifies the type 
of the message. The BSCs 4 then proceed to broadcast the message, via the 
respective BTSs 6, on their CBCHs. The CBCH protocols and the timing of 
the broadcasts are specified in GSM technical specification 05-02. 

The CBC 12 holds a list as illustrated in Figure 3, specifying 
encryption keys for each type of message which is to be broadcast in encrypted 



form. For each such message, the key is Usted against the message identifier. 
Each key is a 16 bit integer and, since the message identifiers are also 16 bit 
integers, no two keys in the Ust need to be the same. The keys are used to 
encrypt a message using an XOR function as will be described below. 

Figure 4 illustrates a procedure carried out by the CBC 12 when 
lecaving a new message for transmission as a cell broadcast message. A new 
message may be provided in the CBC 12 for example by manual input on a 
workstation assoaaied with the CBC, or may be provitted on-line from a 
remote source. 

When the CBC 12 receives the new message, which may be an update 
of a previous message stored for the same message identifier, the message is 
stored by the CBC 12 and any previous message stored for the same message 
identifier is overwritten, step 50. 

Next, the CBC 12 checks, using the message idoitifier provided with 
the new message, whether the message identifier appears in the key list 
illustrated in Figure 3. If no key is held for that particular message identifier, 
the message will be made generaUy available by ceU broadcast to aU mobUe 
stations served in the ceDs in which the message is to be distributed. The 
message is transmitted for broadcast to the relevant BSCs 4 in unencrypted 
form, step 52. 

The cdl broadcast message may consist of (me or more (up to a 
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maximum of IS) pages. Each cell broadcast page consists of 88 octets of 
information, consisting of a 6 octet header and 82 octets for message text. A 
7 bit default character set is used, equaling to up to 93 characters per page. 

Figure S illustrates the manner in which each page of a cell broadcast 
message is transmitted in a cell by the BSC/BTS on the CBCH. The broadcast 
is divided into four blocks per page. The first block 100 contains 2 octets of 
data 108 indicating the serial number for the page, 2 octets of data 110 
indicating the message identifier for the page, 1 octet of data 112 identifying 
the coding scheme used for the message text, and 1 octet of data 114 
indicating the page parameter. The remaining 16 octets of data 116 contain 
the first part of the message text for the page. 

The remaining 3 blocks 102, 104, 106 of the page broadcast consists 
entirely of message text, except each block is headed by a single octet of data . 
118 indicating the block type. 

The serial number indicated in block portion 108 is a 16 bit integer 
which is used to identify a particular message. The serial numbv is updated 
when a message with a given message identifier is updated. The serial number 
consists of a 12 bit message code and a four bit update number, which are 
incremented according to message updates. 

The message identifier in portion 110 is used to identify the type of 
message, as described above. 
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The coding scheme indicated in portion 112 is used to indicate the 
source language of the message, allowing a user to screen out any messages 
received in a language in which they are not conversant. The page parameter 
indicated in portion 114 is used to specify the current page number within a 
message and the total number of pages witfiin the message. 

The message text for each page consists of up to 93 characters. If the 
message text within a page is shorter than 93 characters in length, the carriage 
return (CR) character is used to provide packing, thus bringing the total 
number of characters to 93. To maintain an integral number of octets, the 
remaining 5 bits are set to "O" as padding data at the end of the page. 

The block structure iUustrated in Figure 5 is that of a conventional ceU 
broadcast message, and may be received and displayed by cunenUy-available 
GSM-type mobUe stations in receipt of the ceU broadcast channel on which die 
message is broadcast. 

Referring again to Figure 4, if on die odier hand die CBC 12 detects 
die message identifier of die new message in die key list, the corresponding 
key is retrieved, step 54. The key is dien used to encrypt die message, stq> 
56, which is dien transmitted to die impropriate BSCs 4, step 58. The 
encryption of step 56 is performed by applying an XOR function between die 
most significant 8 bits of die key and each odd-numbered message text octet 
in a page, and by applying die XOR function between die least significant 8 



bits of the key and each even-numbered message text octet in a page, except 
the last such octet. 

The pages broadcast by the BSCs 4 when receiving encrypted cell 
broadcast messages are of the form illustrated in Figure 6. Each page consists 
of the same components as the unencrypted page illustrated in Figure 5, 
namdy 4 blocks each containing the various header portions. However, the 
majority of the message text is encrypted, as indicated by shading in Figure 
6. The last octet of each page of message text, which contains the 5 bits of 
padding data, is left unencrypted, in order to protect the int^rity of the 
padding data, which would be lost if encrypted- Each of the header portions 
is also transmitted in unencrypted form, to allow the proper reception and 
reading of the data in the header portions by all mobile stations 8. 

In order to properly receive and present an encrypted cell broadcast 
message in intelligible form to a user, a mobile station 8 must be provisioned 
with the decryption key corresponding with the encryption key used to encrypt 
the message. With the XOR function as the encryption function, the 
encryption/deayption process is symmetric, and the same key used to encrypt 
the message is used to decrypt the message. This key is referred to herein as 
an encryption k^ when to be used to encrypt data, and a decryption key when 
to be used to decrypt data. 

In order to provision the mobile station 8 with the decryption key, a 
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remote provisioning procedure is used, involving a rwnote SIM updating 
(RSU) message being transmitted to the mobile station 8 as described in 
European patent appUcation no. EP-A-0562890. the contents of which are 
incorporated herein by reference. The decryption keys are transmitled using 
the GSM-defined Short Message Service (SMS) over the radio intafece to the 
mobile station 8 for storage in die SIM 34, The SIM 34 is provided with a 
ceU broadcast decryption toys data field dedicated to the storage of cell 
broadcast decryption key data. 

Figure 7 illustrates the procedures carried out by the NMC 14 in order 
to provision the mobile station 8 of a particular subscriber with decryption 
keys for each limited-access message type which the subscribe is entided to 
have access to. The CSS 15 holds a record for the subscriber, indicating the 
access rights for that subscriber. These access rights are indicated by 
including in the subscriber record a list of the appropriate message identifiers 
for the message types which die subscriber should have access to. This access 
rights list may be updated and changed in the CSS 15. 

In order to provision the mobile station 8 of the subscriber, the NMC 
14 first iniOTOgates the CSS 15 to determine the message access rights which 
are held for the subscriber, step 60. The NMC 14 also interrogates the HLR 
llinordertoretrievethelMSIof die subscriber, step 62. TheNMCUalso 
interrogates the CBC 12 to retrieve die decryption keys corresponding to ra ch 
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of the message identifiers indicated in the access rights details returned by the 
CSS 15, step 64. Next, each of the decryption keys returned by the CBC 12 
is then itself encrypted by applying the XOR function between die 16 bits of 
die decryption key and 16 predetermined bits of the subscriber's IMSI record, 
slisp 66. This is to ensure diat the decrypticm key may only be used by a 
mobile station 8 having access to die subscriber's IMSI (which is stored in the 
subscriber's SIM 34). 

Once die decryption keys are encrypted, die NMC 14 forwards an RSU 
message to the SMC 13 for transmission, via the radio interface, as an SMS 
message to die mobile station 8 of die subscriber. The SMS message is 
transmitted conventionally, via a dedicated data channel, to the mobile station 
8. The RSU message has the form illustrated in Figure 8, and includes a 
header portion 70, the message identifiers for each message type to which the 
subscriber should have access to, the oicrypted decryption keys, and alpha 
tags (alphanumeric identifiers) for use by die subscriber to readily identify 
each of the message types. The header portion 70 includes a flag indicating 
that the SMS message is an RSU message, and a command indicating that the 
contents of the message are to be stored in the cell broadcast decryption keys 
data field. 

On receipt of die SMS message, the mobile station forwards it for 
storage as an SMS message to the SIM 34. However, since the message has 
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an RSU flag, the SIM processor 36 notes that the message is an RSU message, 
and updates the ceU broadcast decryption keys data field in the SIM 34 with 
the message identifiers, the corresponding encrypted keys, and the 
corresponding alpha tags contained in the RSU message. The mobile station 
is now provided with the csqpability to decrypt all encrypted ceil broadcast 
messages having message identifiers corresponding to those stored in the ceU 
broadcast decryption keys data field. 

A user of the mobile station may, by appropriate keystrokes on the 
keypad 32, select cell broadcast messages which the mobile station is to pick 
up and store for possible display by the user. The user may display the alpha 
tags for the message types of limited access messages, in order to aid the 
selection of the limited access message types which the user wishes to have 
displayed. The user is also able to select the message identifiers for message 
types of general access messages, and for message types of limited access 
messages which the mobile station has no decryption keys. 

When a cell broadcast message is received by the mobile station 8 
which has a message identifier of the type selected for possible display by the 
user, and no message is yet stored for the message identifier, the mcAile 
station 8 picks up the message and stores the message in a cell broadcast 
message data field provided in the SIM 34, If the SIM 34 already has a 
message stored for the message identifier in the cell broadcast message, the 
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mobile station 8 checks the serial number of the message to det^mine whether 
it has been updated. If so, the mobile station overwrites the previously-stored 
message in the SIM 34 with the updated message. Otherwise, the mobile 
station 8 ignores the contents of the ceil broadcast message. 

When a ceil broadcast message is newly picked up and stored, the user 
is prompted, for example by an audio tone or by a particular icon on the LED 
display 30 of the mobile station 8, to indicate that a cell broadcast message is 
ready to be displayed. The mobile station then performs the procedures 
illustrated in Figure 9. 

The mobile station first waits for input by the user requesting the 
message to be displayed. On receipt of such input, the mobile station checks 
whether it is currentiy camped on its home network (HPLMN), If the mobile 
Station is camped on a network which is not its home network, the mobile 
station proceeds direcfly to display the stored message. If the message is 
encrypted, the encrypted message is displayed in a form unintelligible to the 
user, step 78, as the message is of the linuted access type and access to the 
information is denied to the subscribers of other networks. If the message 
however is unencrypted, i.e. of the general access type, the message is 
displayed in an intelligible form, step 80. 

If the mobile station is camped on its home network, the mobile station 
checks whether the SIM 34 has the cell broadcast decryption keys data field 
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provided in accordance with this invention. If not, the mobile station proceeds 
once again to either display an OTcrypted message, step 78, or an intdligible 
message, step 80, depending on the access type of message broadcast 

If the SIM 34 currently in the mobile station does have tfie ceil 
broadcast decryption keys data field, the mobUe station proceeds to interrogate 
the SIM 34 to check whether the message identifier of the stored message is 
present in the cell broadcast decryption toys field. If not, tfie message 
received may be of a general access type, and the message is displayed by the 
mobile station 8 in intelligible form, step 80. Otherwise, the message is of a 
limited access type to which the user has no access rights. The message is 
then displayed by the mobile station 8 in encrypted, i.e. unintelligible form, 
to prevent receipt of the information in the message by the user, step 78. 

If the message identifier of the stored message is present in the cell 
broadcast decryption keys data field on the SIM 34, the mobile station 8 
proceeds to retrieve the encrypted decryption key corresponding to the 
message identifier of the stored message, along with the subscriber's IMSI, 
from the SIM, step 82. 

With the encrypted decryption key and the IMSI, die mobile station 8 
performs the reverse of the encryption process carried out in the NMC 14, to 
obtain the original decryption key, step 84. This decryption is carried out by 
performing an XOR fimction between die 16 bits of the encrypted decryption 
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key and the same set of 16 predetermined bits from the subscriber's IMSI used 
in the encryption process. 

The m<Aile station 8 then proceeds to decrypt the stored message, by 
perfDrming the reverse of the encryption process canied out in the CBC 12 
what gmeiating the encrypted cell broadcast message. Namely, the mobile 
station performs the XOR function between the 8 most significant bits of the 
decryption key and each odd-numbered message text octet, and between the 
8 least significant bits of the decryption key and each of the even-numbered 
message text octets, except for the last octet in each page (which was 
originally not encrypted). This returns the original cell broadcast message 
text, which is then displayed on the LCD display 30 of the mobile station, step 
88, in a form intelligible to the user. 

Figure 10 illustrates an example of an original cell broadcast message, 
consisting of one page containing 89 message text characters and 4 carriage 
return (text padding) characters. This message is encrypted as described in 
relation to Figure 4, and after receipt and storage by the mobile station may 
be displayed in accordance with the procedure shown in Figure 9. 

If the mobile station has been provisioned with the corresponding 
decryption key, the message may be displayed in its original form as 
illustrated in Figure 10. 

If however the mobile station has not been provisioned with the 
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zppropTisiie decryption key, the message will appear as iUustrated in Figure 1 1 , 
as a pseudo-random character set. 

Because the number of bits of the encryption key is not equal to, nor 
a multiple of, the number of bits used per character in coding the text, there 
is no direct correspondence between any one of the original characters and die 
characters displayed in the encrypted text. In this case, the coding scheme 
used for the text characters utilises 7 bits per character, and the encryption 
keys contain 16 bits. Of course, other combinations of text character coding 
length and encryption key lengtii may be used to similar effect 

To ensure the long-term security of the encryption method used for 
limited access messages, the encryption keys used to encrypt die message texts 
>viU periodicaUy be altered. Figure 12 iUustiate a procedure carried out by the 
CBC 12 to update a particular encryption key. The CBC 12 first randomly 
generates a new 16 bit encryption key, step 90, and overwrites die previously- 
stored encryption key in the list iUustrated in Figure 3 for die message 
identifier in question, step 91. Next, the CBC 12 proceeds to retrieve die 
message previously stored for the message identifier in question, st^ 92, and 
proceeds to encrypt the message with the newly generated encryption key, step 
93. This encryption process is identical to that carried out when the message 
was originally received by the CBC 12 as described in relation to Figure 4, of 
course udng a different encryption key. Once die message is encrypted, die 
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new cell bTX>adcast message is forwarded to the appropriate BSCs 4, step 94, 
for broadcast by the BTSs 6 on their CBCHs to mobile stations 8 receiving the 
cell broadcast channel in the cells served by the BSCs 4 in question. 

Once a new encryption key has been generated in the CBC 12, and the 
corresponding cdl broadcast message has been encrypted with the newly- 
generated key, the mobile stations 8 of users having access rights to the same 
message type must be provisioned with the new decryption key. 

The first step of provisioning the mobile stations 8 of the appropriate 
subscribers with new decryption keys generated in the CBC 12 is the 
procedure carried out in Figure 13. First, the CSS IS receives from the CBC 
12 a list of message identifiers for the messages for which the decryption keys 
have been updated, step 95. The CSS 15 then proceeds to search its store of 
subscription records for the message identifiers on the updated decryption keys 
list, in order to determine which subsmpdons require updated decryption 
keys, step 96. The CSS 12 then constructs a list of such subscriptions, which 
are forwarded to the NMC 14 to allow the NMC 14 to perform the appropriate 
provisioning procedures, step 97. The NMC 14 then proceeds to perform the 
procedure described in relation to Figure 7 for each subscription appearing on 
the list received from the CSS 15. This results in the mobile stations of each 
such subscription receiving a new RSU message containing updated decryption 
keys, in encrypted form, for message types to which the subscriber has access. 
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These decryption keys are suitable for use in decrypting messages encrypted 
with the newly-generated encryption ksys. 

It will be ^ipreciated that various modifications and variations may be 
employed in relation to the above-described embodiment. 

The provisioning of the mobile stations with decryption keys via die air 
intaSacc, using the RSU-type short messages, has the advantage that no action 
is required on the subscriber's behalf in order to provision the SIM 34 of the 
mobUe station 8 with tiie decryption keys. However, the decryption keys, 
preferably encrypted using tiie subscriber's IMSI, or such lite, as described, 
may be transmitted to the us« by other methods, for example by mail. An 
alternative functionality of die mobile station 8 would allow the encrypted 
decryption toys to be manually input to the mobile station for storage in the 
cell broadcast decryption keys data field in the SIM 34. 

The encryption/decryption mechanism utilised in die above-described 
embodiment utilises die two-way encryption/decryption character of die XOR 
function, and is suffidentiy secure for use in relation to many types of 
information. However, it will be ^predated diat odier two-way encryption/ 
decryption mechanisms, for ecample using symmetric or public/private 
encryption/decryption keys, may be utilised to provide more (or less) secure 
encryption/decryption mechanisms. 

In die above-described embodiment, die general-access messages are 
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not subject to the XOR function used in the encryption/decryption process. 
However, it would also be possible to subject the message to the XOR 
function using a "free" key of the form of 16 bits of "0", which results in a 
message coding which is identical to the original message coding. This 
XORing with the "free** key may be performed in the CBC 12 when 
"encrypting" a general access message, and/or by the mobile station 8 when 
"decrypting" a general access message. In effect, no encryption or decryption 
would take place. 

In the embodiment described, the prevention of access to information 
is implemented by the lack of provision of a decryption key. However, other 
prevention mechanisms could also be employed, such as the remote 
enablement/disablement (for example using broadcast updating messages) of 
a decryption function on the mobile station, or of the cell broadcast receiving 
function on the mobile station. 

Finally, although the above-described embodiment describes a method 
and apparatus utilised in a GSM-type network, the present invention may of 
course be realised in other types of cellular telecommunications networks, 
whethtf using TDMA, CDMA, or other types of radio int^face protocols. 

It is envisaged that further modifications and variations may be 
employed without departing from the scope of the present invention. 
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1. A method of distributing information to users in a cellular 
telecommunications network, said method comprising: 

providing a plurality of mobile stations, each of said mobile stations 
having an associated information access status; 

broadcasting a signal, containing a limited access message, for general 
reception in a cell of said cdlular tdecommunicadons system; 

enabling first mobile stations having a first information access status to 
present said message to a user when being served by said cell; and 

preventing second mobile stations having a second information access 
status from presenting said message to a user when being served in said cell. 

2. A metiiod according to claim 1, wherein said message is 
contained in said signal in encrypted form, and said first mobile stations are 
provided with access to a decryption key for said message. 

3. A method according to claim 2, wherein said first mobile 
stations apply an XOR function to the encrypted message and said decryption 
key in order to present said message to a user. 
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4. A method according to claim 2 or 3, further comprising 
periodically altering said decryption key and providing said first mobile 
stations with access to the altered decryption key. 

5. A method according to claim 2, 3 or 4, wherein said signal 
contains padding data accompanying a portion of said message, and said 
portion is contained in said signal in unencrypted form. 

6. A method according to any preceding claim, wherein said signal 
comprises a header portion containing a message identifier accompanying a 
message and said method comprises enabling both said first and second mobile 
stations to read said message identifier. 

7. A method according to any of the preceding claims, wherein 
status data defining said information access status is stored in a removable data 
store of a first mobile station. 

8. A method according to claim 7, wherein said status data 
comprises a decryption key. 

9. A method according to claim 8, wherein said decryption key is 
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stored in said removable data store in encrypted form. 

10. A method according to claim 9, wherein said decryption key is 
decrypted by said first mobile station using a data string qiecific to said 
removable data store. 

11. A method according to claim 10, wherein said data string is a 
subscriber identifiw used in said cellular telecommunications network. 

12. A method according to any of claims 7 to 11, further 
comprising transmitting said status data to said first mobile station via a radio 
interface in said cellular telecommunications network. 

13. A method according to any preceding claim, wherein said signal 
comprises a plurality of limited access messages each having a corresponding 
access right, 

said method comprising providing said mobile stations with said access 
rights and enabling only mobile stations having an access right corresponding 
to a limited access message to present said limited access message to a user 
when being served in said cell. 
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14. A m^od according to claim 13, comprising providing each of 
said first mobile stations with a selection of said access rights in accordance 
with a subscription held for each first mobile station respectively. 

15. A method according to claim 13 or 14, further comprising 
storing encryption keys for each of a plurality of limited access message types, 
and encrypting each said limited access message using an encryption key in 
accordance with its respective message type. 

16. A method according to any of claims 13 to 15, comprising 
storing a plurality of subscription records, each said subscription record 
comprising access right data defining said access rights. 

17. A method according to claim 16, comprising altering said access 
right data for a subscription record to alter the type of limited ac^rgss messages 
a user is able to receive intelUgibly. 

18. A method according to any preceding claim, wherein said signal 
contains a general access message, and wherein said method comprises 
enabling both said first and second mobile stations to present said general 
access message to a user when being served in said call. 
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19. A method according to any preceding claim, wherein said signal 
is broadcast on a common channel of said cell. 



20. A method according to claim 19, wherein said common channel 
is a ceU broadcast channel of a GSM-type communications system. 

21. A method according to any preceding claim, wherein alternative 
limited access message(s) ate broadcast in cells located in different areas of 
said cellular telecommunications network. 

22. A method of distributing information to users in a cellular 
telecommunications network, said method comprising: 

distributing a decryption key to a pluraUty of users in said networlq 
encrypting a message such that said message may be read correctly 

<»ly by users having access to said deoyption key; and 

transmitting said message on a common channel in a ceU of said 

telecommunications network. 

23. Apparatus tor receiving information in a cellular 
telecommunications system, said apparatus comprising: 
means for storing a decryption key; 
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means for receiving a message broadcast on a common channel of a 
cell of said cellular telecommunications system; and 

means for decrypting said message using said stored decryption key; 
and means for presenting said decrypted message to a user. 

24. Apparatus according to claim 23, wherein said storage means 
is a removable data store. 

25, A cellular mobile telephone according to claim 23 or 24. 
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